Add option to generate new JWT secret

Signed-off-by: Denys Fedoryshchenko <denys.f@collabora.com>

Author: nuclearcat

src/main.rs

@@ -1,5 +1,5 @@
 // SPDX-License-Identifier: LGPL-2.1-or-later
-// Copyright (C) 2024 Collabora, Ltd.
+// Copyright (C) 2024-2025 Collabora, Ltd.
 // Author: Denys Fedoryshchenko <denys.f@collabora.com>
 /*
    KernelCI Storage Server
@@ -53,6 +53,13 @@ struct Args {
         help = "Config file, relative to files_directory"
     )]
     config_file: String,
+
+    #[clap(
+        short,
+        long,
+        help = "Generate JWT secret"
+    )]
+    generate_jwt_secret: bool,
 }
 
 struct ReceivedFile {
@@ -87,6 +94,11 @@ async fn initial_setup() -> Option<RustlsConfig> {
     let download_dir = "download";
     let args = Args::parse();
 
+    if args.generate_jwt_secret {
+        storjwt::generate_jwt_secret();
+        std::process::exit(0);
+    }
+
     if let Err(e) = std::env::set_current_dir(&args.files_directory) {
         eprintln!("Error changing directory: {}", e);
         std::process::exit(1);

src/storjwt.rs

@@ -36,3 +36,15 @@ pub fn verify_jwt_token(token_str: &str) -> Result<BTreeMap<String, String>, jwt
     }
     Ok(claims.clone())
 }
+
+pub fn generate_jwt_secret() {
+    // generate a random 32 bytes alphanumeric string
+    use rand::{distributions::Alphanumeric, Rng};
+    
+    let secret: String = rand::thread_rng()
+        .sample_iter(&Alphanumeric)
+        .take(32)
+        .map(char::from)
+        .collect();
+    println!("jwt_secret=\"{}\"", secret);
+}